Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec web gateway vulnerabilities and exploits
(subscribe to this query)
8.5
CVSSv2
CVE-2015-5690
The management console on Symantec Web Gateway (SWG) appliances with software prior to 5.2.2 DB 5.0.0.1277 allows remote authenticated users to bypass intended access restrictions and execute arbitrary commands by leveraging a "redirect."
Symantec Web Gateway
7.9
CVSSv2
CVE-2015-5693
The management console on Symantec Web Gateway (SWG) appliances with software prior to 5.2.2 DB 5.0.0.1277 allows remote authenticated users to execute arbitrary commands via vectors related to "traffic capture."
Symantec Web Gateway
6.5
CVSSv2
CVE-2014-7285
The management console on the Symantec Web Gateway (SWG) appliance prior to 5.2.2 allows remote authenticated users to execute arbitrary OS commands by injecting command strings into unspecified PHP scripts.
Symantec Web Gateway
1 EDB exploit
2 Github repositories
7.9
CVSSv2
CVE-2013-5017
SNMPConfig.php in the management console in Symantec Web Gateway (SWG) prior to 5.2.1 allows remote malicious users to execute arbitrary commands via unspecified vectors.
Symantec Web Gateway
5.2
CVSSv2
CVE-2014-1650
SQL injection vulnerability in user.php in the management console in Symantec Web Gateway (SWG) prior to 5.2.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Symantec Web Gateway
5.8
CVSSv2
CVE-2014-1651
SQL injection vulnerability in clientreport.php in the management console in Symantec Web Gateway (SWG) prior to 5.2 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Symantec Web Gateway
Symantec Web Gateway 5.1
2.3
CVSSv2
CVE-2014-1652
Multiple cross-site scripting (XSS) vulnerabilities in the management console in Symantec Web Gateway (SWG) prior to 5.2 allow remote authenticated users to inject arbitrary web script or HTML via unspecified report parameters.
Symantec Web Gateway
Symantec Web Gateway 5.1
4.3
CVSSv2
CVE-2014-1648
Cross-site scripting (XSS) vulnerability in brightmail/setting/compliance/DlpConnectFlow$view.flo in the management console in Symantec Messaging Gateway 10.x prior to 10.5.2 allows remote malicious users to inject arbitrary web script or HTML via the displayTab parameter.
Symantec Messaging Gateway 10.0.1
Symantec Messaging Gateway 10.5.1
Symantec Messaging Gateway 10.0.2
Symantec Messaging Gateway 10.0
Symantec Messaging Gateway 10.0.3
Symantec Messaging Gateway 10.5.0
6.5
CVSSv2
CVE-2013-5012
Multiple SQL injection vulnerabilities in the management console on the Symantec Web Gateway (SWG) appliance prior to 5.2 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Symantec Web Gateway
4.3
CVSSv2
CVE-2013-5013
Multiple cross-site scripting (XSS) vulnerabilities in the management console on the Symantec Web Gateway (SWG) appliance prior to 5.2 allow remote malicious users to inject arbitrary web script or HTML via (1) vectors involving PHP scripts and (2) unspecified other vectors.
Symantec Web Gateway
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »